Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBME918A373BCE028E642E082B290FBA537C8CE59E8858AC5F691CDAC167931C989
HistorySep 29, 2020 - 1:31 p.m.

Security Bulletin: Version 5.0.5 of Redis included in IBM Netcool Operations Insight 1.6.1.x has a security vulnerability (CVE-2020-14147)

2020-09-2913:31:21
www.ibm.com
12
redis
ibm netcool operations insight
security vulnerability
cve-2020-14147
denial of service
integer overflow
stack-based buffer overflow
ibm cloud event management
ibm cloud private
ibm support
upgrade

EPSS

0.003

Percentile

69.9%

JSON

Summary

Security Bulletin: Version 5.0.5 of Redis included in IBM Netcool Operations Insight 1.6.1.x has a security vulnerability

Vulnerability Details

CVEID:CVE-2020-14147
**DESCRIPTION:**Redis is vulnerable to a denial of service, caused by an integer overflow in the getnum function in lua_struct.c in Redis. By sending a specially crafted command with a large number, a remote attacker could exploit this vulnerability to cause a stack-based buffer overflow, leading a denial of service…
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/183518 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

Affected Products and Versions

Affected Product(s) Version(s)
IBM Cloud Event Management on IBM Cloud Private All

Remediation/Fixes

IBM Netcool Operations Insight 1.6.2 includes the fix for this vulnerability. Please see IBM Support to upgrade to Netcool Operations Insight 1.6.2: <https://www.ibm.com/support/pages/node/6221238&gt;

Workarounds and Mitigations

None

Related

ibm 4
debian 2
suse 1
nessus 8
osv 2
openvas 4
veracode 1
cbl_mariner 2
mageia 1
ubuntucve 1
debiancve 1
cve 1
alpinelinux 1
redhatcve 1
cvelist 1
nvd 1
prion 1
gentoo 1
photon 6
oracle 1
ibm
ibm
Security Bulletin: Possible denial of service attack affecting Watson Knowledge Catalog for IBM Cloud Pak for Data
2020-08-03 16:22:19
Security Bulletin: IBM DataPower Gateway is potentially vulnerable to a Denial of Service (CVE-2020-14147)
2021-06-08 22:33:53
Security Bulletin: IBM Event Streams is affected by a Redis vulnerability (CVE-2020-14147)
2020-09-26 19:08:06
debian
debian
[SECURITY] [DSA 4731-1] redis security update
2020-07-19 19:30:52
[SECURITY] [DSA 4731-1] redis security update
2020-07-19 19:30:52
suse
suse
Security update for redis (moderate)
2020-07-23 00:00:00
nessus
nessus
Photon OS 1.0: Redis PHSA-2020-1.0-0304
2020-06-29 00:00:00
Photon OS 3.0: Redis PHSA-2020-3.0-0108
2020-07-07 00:00:00
Photon OS 2.0: Redis PHSA-2020-2.0-0256
2020-07-07 00:00:00
osv
osv
redis - security update
2020-07-19 00:00:00
CVE-2020-14147
2020-06-15 18:15:14
openvas
openvas
Mageia: Security Advisory (MGASA-2020-0312)
2022-01-28 00:00:00
Debian: Security Advisory (DSA-4731-1)
2020-07-20 00:00:00
Redis < 6.0.3 Integer Overflow Vulnerability
2021-04-09 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-04-29 11:57:54
cbl_mariner
cbl_mariner
CVE-2020-14147 affecting package redis 5.0.5-7
2020-11-30 19:30:43
CVE-2020-14147 affecting package redis for versions less than 5.0.5-7
2022-04-09 06:51:55
mageia
mageia
Updated redis packages fix security vulnerability
2020-08-01 02:25:42
ubuntucve
ubuntucve
CVE-2020-14147
2020-06-15 00:00:00
debiancve
debiancve
CVE-2020-14147
2020-06-15 18:15:14
cve
cve
CVE-2020-14147
2020-06-15 18:15:14
alpinelinux
alpinelinux
CVE-2020-14147
2020-06-15 18:15:14
redhatcve
redhatcve
CVE-2020-14147
2020-06-18 14:37:09
cvelist
cvelist
CVE-2020-14147
2020-06-15 16:52:45
nvd
nvd
CVE-2020-14147
2020-06-15 18:15:14
prion
prion
Integer overflow
2020-06-15 18:15:00
gentoo
gentoo
Redis: Multiple vulnerabilities
2020-08-27 00:00:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0304
2020-06-26 00:00:00
Important Photon OS Security Update - PHSA-2020-0304
2020-06-27 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0256
2020-06-27 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2021
2021-01-19 00:00:00

EPSS

0.003

Percentile

69.9%

JSON
Related for E918A373BCE028E642E082B290FBA537C8CE59E8858AC5F691CDAC167931C989
ibm4debian2suse1nessus8osv2openvas4veracode1cbl_mariner2mageia1ubuntucve1debiancve1cve1alpinelinux1redhatcve1cvelist1nvd1prion1gentoo1photon6oracle1